CodeQL library for Python
codeql/python-all 0.6.4 (changelog, source)
Search

Module StackTraceExposure

Provides default sources, sinks and sanitizers for detecting “stack trace exposure” vulnerabilities, as well as extension points for adding your own.

Import path

import semmle.python.security.dataflow.StackTraceExposureCustomizations

Classes

ExceptionInfoAsSource

A source of exception info, considered as a flow source.

Sanitizer

A sanitizer for “stack trace exposure” vulnerabilities.

SanitizerGuard

DEPRECATED: Use Sanitizer instead.

ServerHttpResponseBodyAsSink

The body of a HTTP response that will be returned from a server, considered as a flow sink.

Sink

A data flow sink for “stack trace exposure” vulnerabilities.

Source

A data flow source for “stack trace exposure” vulnerabilities.